CVE-2025-21685: platform/x86: lenovo-yoga-tab2-pro-1380-fastcharger: fix serdev race

Description

In the Linux kernel, the following vulnerability has been resolved: platform/x86: lenovo-yoga-tab2-pro-1380-fastcharger: fix serdev race The yt2_1380_fc_serdev_probe() function calls devm_serdev_device_open() before setting the client ops via serdev_device_set_client_ops(). This ordering can trigger a NULL pointer dereference in the serdev controller's receive_buf handler, as it assumes serdev->ops is valid when SERPORT_ACTIVE is set. This is similar to the issue fixed in commit 5e700b384ec1 ("platform/chrome: cros_ec_uart: properly fix race condition") where devm_serdev_device_open() was called before fully initializing the device. Fix the race by ensuring client ops are set before enabling the port via devm_serdev_device_open(). Note, serdev_device_set_baudrate() and serdev_device_set_flow_control() calls should be after the devm_serdev_device_open() call.

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 0.11462 (how common is this exploit)

EPSS Date: 2025-02-10 (when was this score calculated)

Classification

CVE ID: CVE-2025-21685

Affected Products

Vendor: Linux

Product: Linux

Timeline

2025-02-10 00:30:15 UTC
CVE

platform/x86: lenovo-yoga-tab2-pro-1380-fastcharger: fix serdev race